Demonstration
To process your request, we need to process your personal data. Find out more about the processing of your personal data here.

GDPR and HR : risks and challenges for an employer

About us

GDPR has become the preferred pressure tool for employees

 

GDPR and HR : HR is a sector with major GDPR issues because:

● 7 complaints/day are filed with the CNIL (National Commission for Information Technology and Civil Liberties) by troubled employees in 2019.
● = 20% of the 14,000 complaints filed with the CNIL (National Commission for Information Technology and Civil Liberties)

🎯 The aim is simple: to put pressure on or put his employer in difficulty in the event of the employee leaving. The GDPR is used as a pressure tool by employees.

A simple letter of formal noticee.g : right of access, right of deletion, etc.) is enough to destabilize an HR department.
In this case, the employer has just one month to respond favorably to the employee's request. If no response is received within the allotted time, the employee can easily lodge a complaint with the CNIL (National Commission for Information Technology and Civil Liberties) ) for breach of his fundamental rights, which the CNIL (National Commission for Information Technology and Civil Liberties) penalizes heavily.

What are the 7 tips for preventing risks?

 

Tip 1: Adopt a specific HR and candidates policy to inform employees, interns, work-study students, corporate officers and managers

Tip 2: Raise your HR teams' awareness several times a year with :
● rules of good conduct
● an information systems charter
● quizzes

Tip 3: In the event of an access request, only provide the data indicated in the personal file. Above all, do not provide professional e-mails concerning him/her or in which he/she is the sender or Data recipient !

Tip 4: If you use video surveillance, make sure employees are properly informed and comply with the applicable rules.

Tip 5: Respect HR Data retention retention periods

Tip 6: Check your technical service providerse.g HR IS, car rental, accountant, etc.).

Tip 7: Comply with the GDPR internallye.g : privacy policy, register, control of service providers, etc.)! Otherwise, an employee can report you to the CNIL (National Commission for Information Technology and Civil Liberties) for failure to comply CNIL (National Commission for Information Technology and Civil Liberties)

Would you like
to find out more?

To process your request, we need to process your personal data. Find out more about the processing of your personal data here.

Already 430 compliant companies

When human expertise meets technological power for your GDPR compliance.

A GDPR legal expert
as a new colleague

At Dipeeo, our GDPR experts - specialized lawyers and former in-house counsel - take care of your compliance from A to Z

  • A dedicated legal expert

  • An external DPO registered with the CNIL (National Commission for Information Technology and Civil Liberties))

  • Unlimited, tailor-made advice 

  • Cutting-edge expertise

No more stress, no more wasted time, we manage everything for you.

A single tool to manage your compliance

Discover the
news GDPR